Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
File:                     TuwmeuLxv5Xm16FCCA5d96MTlJI.mft (raw, json)
Hash identifier:          QgVXNHwGkPryx7Z4ndqyvwW+QRgqFrL+rte30Vp/J5o=
Subject key identifier:   91:D4:2D:BB:1C:4D:B0:50:E9:0F:36:71:37:1E:1A:EE:CB:46:5D:FA
Authority key identifier: 4E:EC:26:7A:E2:F1:BF:95:E6:D7:A1:42:08:0E:5D:F7:A3:13:94:92
Certificate issuer:       /CN=4eec267ae2f1bf95e6d7a142080e5df7a3139492
Certificate serial:       019769CE72676FBDAABBB64CED8CB07BA75B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
Manifest number:          0A70
Signing time:             Fri 13 Jun 2025 15:00:26 +0000
Manifest this update:     Fri 13 Jun 2025 15:00:26 +0000
Manifest next update:     Sat 14 Jun 2025 15:00:26 +0000
Files and hashes:         1: TuwmeuLxv5Xm16FCCA5d96MTlJI.crl (hash: TM30Vr24qORj+7MPwY0UZt6f9JVtXd7M8PiyHTX0jzs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 15:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:ce:72:67:6f:bd:aa:bb:b6:4c:ed:8c:b0:7b:a7:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4eec267ae2f1bf95e6d7a142080e5df7a3139492
        Validity
            Not Before: Jun 13 15:00:26 2025 GMT
            Not After : Jun 14 15:00:26 2025 GMT
        Subject: CN=91d42dbb1c4db050e90f3671371e1aeecb465dfa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:73:97:c6:db:65:72:54:e6:fd:82:53:11:61:
                    fd:ac:88:93:9c:38:5b:bd:e7:67:04:9c:7a:b7:a8:
                    6c:eb:9d:62:dd:2f:50:0e:dc:24:42:44:71:eb:28:
                    4d:7d:e0:2e:98:fd:99:5b:63:fc:fe:21:e6:ac:ee:
                    79:55:94:f4:26:5e:93:66:f2:01:d1:17:8a:64:40:
                    85:0b:62:58:50:a9:d5:b2:22:c0:94:7b:e8:aa:9c:
                    4d:ee:cc:be:c4:0f:e9:32:bd:00:61:ce:5c:2d:38:
                    c5:7d:30:82:72:83:a3:1e:0b:2b:ca:16:c5:07:2e:
                    f1:85:61:e5:39:1f:fc:81:94:ea:6c:f2:43:35:1a:
                    a9:d8:9c:f1:51:d2:18:de:1b:13:5a:16:fb:6b:1c:
                    28:51:b8:c7:91:2c:d7:54:a3:53:2f:1b:73:c1:2f:
                    f1:f0:22:0d:36:12:8e:79:66:96:0b:c7:19:69:20:
                    11:68:3f:19:42:24:48:5e:7a:27:5e:58:2f:46:6b:
                    46:1a:91:3e:e5:17:82:f1:d0:ec:7d:6a:7b:d9:9f:
                    01:62:e6:3e:89:75:e5:44:23:d5:ff:0f:84:d9:e8:
                    a9:86:b6:ac:1c:2d:f0:4d:aa:bc:77:ac:57:22:da:
                    ae:03:42:f9:0c:2c:5f:91:f7:ef:02:92:dc:a4:87:
                    33:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:D4:2D:BB:1C:4D:B0:50:E9:0F:36:71:37:1E:1A:EE:CB:46:5D:FA
            X509v3 Authority Key Identifier:
                keyid:4E:EC:26:7A:E2:F1:BF:95:E6:D7:A1:42:08:0E:5D:F7:A3:13:94:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuwmeuLxv5Xm16FCCA5d96MTlJI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/68b464-2460-4e53-ade3-6b96c8361265/1/TuwmeuLxv5Xm16FCCA5d96MTlJI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:52:e7:7d:f9:62:0e:9f:5f:5f:c2:15:1d:8f:70:1d:98:d8:
         cc:11:8e:9a:c5:02:9d:ea:fd:e0:f5:46:1c:92:85:94:48:50:
         c7:14:4e:b8:e8:98:cc:39:39:66:0f:7c:44:6f:85:68:7f:cc:
         ec:e3:de:fd:0f:f9:5e:36:0b:e1:8b:ae:23:ad:e9:05:3e:79:
         b3:7a:db:63:83:cf:fa:cf:88:a0:13:32:73:fe:89:22:4a:e5:
         79:78:92:00:73:fb:42:f5:20:96:df:15:0b:b8:c2:13:ce:ae:
         21:6c:bd:29:92:4f:40:75:56:7d:b0:07:37:ff:d7:63:b4:68:
         2c:7a:4c:e8:f4:7d:fd:37:40:17:1f:ad:00:6e:f8:63:4e:d3:
         bc:99:47:fa:54:08:3b:f2:eb:a2:e2:b1:74:83:a3:d8:72:89:
         ab:79:5f:a2:3c:98:97:8d:fc:ff:09:fd:34:1d:31:0b:78:13:
         98:0a:f5:4f:0e:fc:80:7d:59:3b:8a:74:53:af:b4:0e:b6:bd:
         c1:89:3c:7b:6f:cd:4e:62:96:ef:31:79:1c:0b:69:8c:31:d4:
         a9:60:d6:1d:32:05:df:4d:d6:24:21:df:20:b6:64:c2:25:b6:
         1b:42:a6:8f:d2:35:98:52:73:89:d1:16:10:95:f1:19:35:22:
         49:53:16:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:07:33 2025 by rpki-client